cosmoscrew / ssrf-playground
A playground to practice SSRF Attacks against web apps
☆17Updated 6 years ago
Alternatives and similar repositories for ssrf-playground:
Users that are interested in ssrf-playground are comparing it to the libraries listed below
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 6 years ago
- View screenshots as a slideshow over http☆15Updated 5 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆9Updated 2 years ago
- Golang code to crawl website, extract links from html, paths from JavaScript code, follow and repeat.☆12Updated 6 years ago
- Take a list of URIs and print all the of the paths☆10Updated 4 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 4 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆19Updated 5 years ago
- A better dns bruteforcer written in golang☆13Updated 6 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆18Updated 5 years ago
- Simple webinterface combining different recon tools.☆12Updated 7 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- Scan and import relevant requests directly to burp!☆9Updated 5 years ago
- ☆20Updated 5 years ago
- Bug Bounty Clipboard☆17Updated 5 years ago
- Everything about xss protection technology☆15Updated 5 years ago
- Just a simple SMTP server, implementation of @corpix smtpd library☆14Updated 4 years ago
- Jast (Just Another Screenshot Tool)☆10Updated 5 years ago
- Simple tools to handle string and generate subdomain permutations☆15Updated 2 years ago
- Useful Windows and AD tools☆15Updated 3 years ago
- Static analysis of APKs with regular expressions☆10Updated 3 years ago
- Burp Intruder File Payload Generator☆18Updated 5 years ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆12Updated 4 years ago
- Modifed PowerSploit/PowerView to search files and match RegEx for Sensitive info (PII, PCI, Passwords, Usernames, SNMP Strings, etc.)☆14Updated 6 years ago
- The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…☆15Updated 6 years ago
- Scripts for OSCE☆18Updated 6 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- A simple tool with the power of "Go" to find the hidden Vhosts defined at the server.☆19Updated 6 years ago
- Of the thousands of lazy reconnaissance scripts, this one is by far the one in this repository.☆11Updated 3 years ago